exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:"CVE-2026-23876"

exploitDog

bind:"CVE-2026-23876"

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 11

Количество 11

CVE-2026-23876

2 месяца назад

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controlled data past the allocated heap buffer when processing a maliciously crafted image file. Any operation that reads or identifies an image can trigger the overflow, making it exploitable via common image upload and processing pipelines. Versions 7.1.2-13 and 6.9.13-38 fix the issue.

CVSS3: 8.1

EPSS: Низкий

CVE-2026-23876

2 месяца назад

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controlled data past the allocated heap buffer when processing a maliciously crafted image file. Any operation that reads or identifies an image can trigger the overflow, making it exploitable via common image upload and processing pipelines. Versions 7.1.2-13 and 6.9.13-38 fix the issue.

CVSS3: 8.1

EPSS: Низкий

CVE-2026-23876

2 месяца назад

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controlled data past the allocated heap buffer when processing a maliciously crafted image file. Any operation that reads or identifies an image can trigger the overflow, making it exploitable via common image upload and processing pipelines. Versions 7.1.2-13 and 6.9.13-38 fix the issue.

CVSS3: 8.1

EPSS: Низкий

CVE-2026-23876

2 месяца назад

ImageMagick is free and open-source software used for editing and mani ...

CVSS3: 8.1

EPSS: Низкий

BDU:2026-00645

2 месяца назад

Уязвимость функции ReadXBMImage() консольного графического редактора ImageMagick, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации

CVSS3: 8.1

EPSS: Низкий

ELSA-2026-3058

19 дней назад

ELSA-2026-3058: ImageMagick security update (IMPORTANT)

EPSS: Низкий

SUSE-SU-2026:0503-1

около 1 месяца назад

Security update for ImageMagick

EPSS: Низкий

SUSE-SU-2026:0384-1

около 2 месяцев назад

Security update for ImageMagick

EPSS: Низкий

SUSE-SU-2026:0438-1

около 2 месяцев назад

Security update for ImageMagick

EPSS: Низкий

SUSE-SU-2026:0437-1

около 2 месяцев назад

Security update for ImageMagick

EPSS: Низкий

openSUSE-SU-2026:20337-1

20 дней назад

Security update for ImageMagick

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2026-23876 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controlled data past the allocated heap buffer when processing a maliciously crafted image file. Any operation that reads or identifies an image can trigger the overflow, making it exploitable via common image upload and processing pipelines. Versions 7.1.2-13 and 6.9.13-38 fix the issue.	CVSS3: 8.1	0% Низкий	2 месяца назад
	CVE-2026-23876 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controlled data past the allocated heap buffer when processing a maliciously crafted image file. Any operation that reads or identifies an image can trigger the overflow, making it exploitable via common image upload and processing pipelines. Versions 7.1.2-13 and 6.9.13-38 fix the issue.	CVSS3: 8.1	0% Низкий	2 месяца назад
	CVE-2026-23876 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controlled data past the allocated heap buffer when processing a maliciously crafted image file. Any operation that reads or identifies an image can trigger the overflow, making it exploitable via common image upload and processing pipelines. Versions 7.1.2-13 and 6.9.13-38 fix the issue.	CVSS3: 8.1	0% Низкий	2 месяца назад
	CVE-2026-23876 ImageMagick is free and open-source software used for editing and mani ...	CVSS3: 8.1	0% Низкий	2 месяца назад
	BDU:2026-00645 Уязвимость функции ReadXBMImage() консольного графического редактора ImageMagick, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации	CVSS3: 8.1	0% Низкий	2 месяца назад
	ELSA-2026-3058 ELSA-2026-3058: ImageMagick security update (IMPORTANT)			19 дней назад
	SUSE-SU-2026:0503-1 Security update for ImageMagick			около 1 месяца назад
	SUSE-SU-2026:0384-1 Security update for ImageMagick			около 2 месяцев назад
	SUSE-SU-2026:0438-1 Security update for ImageMagick			около 2 месяцев назад
	SUSE-SU-2026:0437-1 Security update for ImageMagick			около 2 месяцев назад
	openSUSE-SU-2026:20337-1 Security update for ImageMagick			20 дней назад

Уязвимостей на страницу